Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Cross site request forgery (csrf)

🗓️ 26 Jan 2018 02:29:00Reported by PRIOn knowledge baseType 
prion
 prion🔗 www.prio-n.com👁 10 Views

Jenkins global-build-stats plugin 1.4 earlier versions have potential vulnerabilities, including reflected cross-site scripting and cross-site request forgery

Related
Refs
ReporterTitlePublishedViews
Family
CNVD		CloudBees Jenkins global-build-stats plugin cross-site scripting vulnerability
2 Feb 201800:00
cnvd
CVE		CVE-2017-1000389
26 Jan 201802:00
cve
Cvelist		CVE-2017-1000389
26 Jan 201802:00
cvelist
EUVD		EUVD-2022-4024
3 Oct 202520:07
euvd
Github Security Blog		Cross-Site Request Forgery (CSRF) vulnerability in Jenkins global-build-stats plugin
14 May 202203:45
github
NVD		CVE-2017-1000389
26 Jan 201802:29
nvd
OSV		GHSA-GW8G-HH47-Q4GW Cross-Site Request Forgery (CSRF) vulnerability in Jenkins global-build-stats plugin
14 May 202203:45
osv
SUSE CVE		SUSE CVE-2017-1000389
15 Feb 202304:35
susecve
Veracode		Cross-site Scripting (XSS)
29 Jan 201800:31
veracode
vulnersOsv		org.jenkins-ci.plugins:build-metrics (>=1.0 <=1.3) potentially affected by CVE-2017-1000389 via org.jenkins-ci.plugins:global-build-stats (=1.2)
14 May 202203:45
vulnersosv
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
12 Feb 2018 12:52Current
6.1Medium risk
Vulners AI Score6.1
EPSS0.00065
jenkinsglobal-build-stats pluginversions 1.4vulnerabilityreflected cross-site scriptingjson responsecontent typepotential vulnerabilitymodify datapost requests
10